[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjQjFGFJKn-PD8phmgI1Go17NEG46tR4rkWP5CENjNzg":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":23,"download_link":24,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27,"vulnerabilities":28,"developer":29,"crawl_stats":26,"alternatives":36,"analysis":131,"fingerprints":205},"wpgear-consent-privacy-policy-acceptance","WPGear – Consent Privacy Policy Acceptance","2.5","wpgear","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpgear\u002F","\u003Cp>A simple and convenient solution for implementing the requirements of the Laws on Personal Data.\u003C\u002Fp>\n\u003Ch4>Futured\u003C\u002Fh4>\n\u003Cp>The main concept is to avoid unnecessary inconvenience.\u003Cbr \u002F>\nThe floating banner does not interfere with viewing content.\u003Cbr \u002F>\nIf the visitor agrees to the requirements and clicks the “I agree” button, the banner disappears and will no longer be displayed on the website for this browser on this device.\u003C\u002Fp>\n\u003Cp>You can customize the Message Text and include a link to the Privacy Policy page.\u003C\u002Fp>\n\u003Cp>The appearance, shape and location of the banner can be fully customized to suit your design using CSS.\u003C\u002Fp>\n","Requests the website visitor to confirm consent to the use of personal data (Privacy Policy) and the storage of cookies on first visit.",0,148,"2026-02-19T14:59:00.000Z","6.9.4","4.1","5.4",[18,19,20,21,22],"accept","agreement","consent","cookie","privacy-policy","https:\u002F\u002Fwpgear.xyz\u002Faccept-privacy-policy","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpgear-consent-privacy-policy-acceptance.zip",100,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":30,"total_installs":31,"avg_security_score":32,"avg_patch_time_days":33,"trust_score":34,"computed_at":35},15,2270,97,33,86,"2026-04-04T05:42:28.531Z",[37,57,82,100,115],{"slug":38,"name":39,"version":40,"author":41,"author_profile":42,"description":43,"short_description":44,"active_installs":45,"downloaded":46,"rating":47,"num_ratings":48,"last_updated":49,"tested_up_to":14,"requires_at_least":50,"requires_php":51,"tags":52,"homepage":55,"download_link":56,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"auto-terms-of-service-and-privacy-policy","TermsFeed AutoTerms: Privacy Policy Generator, Cookie Consent, GDPR, CCPA, Terms & Conditions, Disclaimers, Cookies Policy, EULA","3.0.5","TermsFeed","https:\u002F\u002Fprofiles.wordpress.org\u002Ftermsfeed\u002F","\u003Cp>TermsFeed AutoTerms helps you with a wide range of legal requirements your WordPress website might be required to keep up with, such as GDPR, CCPA (CPRA) or Amazon Associates requirements to have a disclosure for affiliate links.\u003C\u002Fp>\n\u003Cp>Previously, TermsFeed AutoTerms was called “WP AutoTerms” and “Auto Terms of Service and Privacy Policy”.\u003C\u002Fp>\n\u003Ch4>Generate Privacy Policy, Terms & Conditions and other legal agreements\u003C\u002Fh4>\n\u003Cp>TermsFeed AutoTerms helps you create the most important legal pages your WordPress website needs using a simple questionnaire, such as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Privacy Policy\u003C\u002Fli>\n\u003Cli>Terms & Conditions\u003C\u002Fli>\n\u003Cli>Cookies Policy\u003C\u002Fli>\n\u003Cli>Return Policy\u003C\u002Fli>\n\u003Cli>Disclaimer\u003C\u002Fli>\n\u003Cli>EULA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also create your own legal pages and manage them through the TermsFeed AutoTerms plugin.\u003C\u002Fp>\n\u003Ch4>Compliance Kits\u003C\u002Fh4>\n\u003Cp>“Compliance Kits” help you with certain legal compliance requirements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Cookie Consent. Manage vendors scripts you use (i.e. Google Analytics) and get user consent before scripts are loaded. Use this Kit and show a notice banner to visitors and get consent from users with “I Agree” and “I Decline” buttons.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Cookie Notice. Inform users whenever cookies are used on your website. Use this Kit and display a simple announcement cookie notice banner.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Links to Legal Pages. Your legal pages must be visible and accessible to all users. Use this Kit and automatically insert the links to your legal pages in the footer section of your website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Update Notices of Legal Pages. It’s a best practice to inform users of your legal pages content updates. Use this Kit and show an announcement bar for a limited time to inform your users whenever you’ve updated your legal pages.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Endorsements. You need to disclose if you have affiliate links on your website. Use this Kit and include a disclaimer at the start\u002Fend of any posts with affiliate links.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>DISCLAIMER\u003C\u002Fh4>\n\u003Cp>TermsFeed AutoTerms plugin is provided with the purpose of helping you with various legal compliance requirements. While we do our best to provide you useful information to use as a starting point, nothing can substitute professional legal advice in drafting your legal agreements and\u002For assisting you with legal compliance. We cannot guarantee any conformity with the law, which only a lawyer can do. We are not attorneys. We are not liable for any content, code, or other errors or omissions or inaccuracies. This plugin provides no warranties or guarantees. Nothing in this plugin, therefore, shall be considered legal advice and no attorney-client relationship is established. Please note that in some cases, depending on your legislation, further actions may be required to make your WordPress website compliant with the law.\u003C\u002Fp>\n\u003Ch3>Suggestions\u003C\u002Fh3>\n\u003Cp>Have a chat with us and let us know what you’d like to see added.\u003C\u002Fp>\n\u003Ch3>Honorary Mention\u003C\u002Fh3>\n\u003Cp>Special thanks to this plugin’s original author, Clifford Paulick of https:\u002F\u002Ftourkick.com\u002F\u003C\u002Fp>\n","All-in-One compliance solution from TermsFeed: Generator of Privacy Policy, T&Cs, Affiliate Disclaimers and Cookie Consent Notice Banner.",90000,3404596,94,244,"2026-01-28T20:29:00.000Z","4.2","5.3",[53,20,21,54,22],"ccpa","gdpr","https:\u002F\u002Fwww.termsfeed.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-terms-of-service-and-privacy-policy.3.0.5.zip",{"slug":58,"name":59,"version":60,"author":61,"author_profile":62,"description":63,"short_description":64,"active_installs":65,"downloaded":66,"rating":67,"num_ratings":68,"last_updated":69,"tested_up_to":70,"requires_at_least":71,"requires_php":72,"tags":73,"homepage":77,"download_link":78,"security_score":79,"vuln_count":80,"unpatched_count":11,"last_vuln_date":81,"fetched_at":27},"gdpr-compliance-cookie-consent","GDPR Compliance & Cookie Consent","1.6.1","gdprcompliancewp","https:\u002F\u002Fprofiles.wordpress.org\u002Fgdprcompliancewp\u002F","\u003Cp>GDPR Compliance and Cookie Consent is a free WordPress plugin designed to safeguard customer privacy and manage personal data responsibly on your website. It offers features such as transparent privacy and cookie policies, GDPR consent checkboxes, cookie blocking functionality, access to consumer data, and options for users to request data deletion. Compatible with WordPress 4.6 and higher, this essential plugin ensures compliance with GDPR standards, enhancing user trust.\u003C\u002Fp>\n\u003Ch3>What is GDPR\u003C\u002Fh3>\n\u003Cp>The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also looks after the transfer of personal data outside of these areas.\u003C\u002Fp>\n\u003Ch3>GDPR Plugin Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Ensure the Right to be Forgotten\u003C\u002Fstrong>\u003Cbr \u002F>\nRequest to delete all stored data (confirmed by email link);\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Control Data Access\u003C\u002Fstrong>\u003Cbr \u002F>\nDedicated form to request personal data stored on a website;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>GDPR Consent checkboxes\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd consent boxes for various forms on your website like WordPress Comments and customized contact forms;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Customizable Options\u003C\u002Fstrong>\u003Cbr \u002F>\nPrivacy Policy, Terms of Services, Cookie Consent and Email marketing opt-in forms;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect Integration\u003C\u002Fstrong>\u003Cbr \u002F>\nSmooth integration with most popular WordPress plugins;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cookie Blocker\u003C\u002Fstrong>\u003Cbr \u002F>\nBlock all cookies including analytics and advertising networks until formal consent to collect and use your data.\u003C\u002Fp>\n\u003Ch3>Who is it for?\u003C\u002Fh3>\n\u003Cp>From May 25, 2018, all companies with EU citizens as customers who are visiting their website, regardless of the location of the company itself, need to abide by the GDPR rules when handling their personal data.\u003C\u002Fp>\n\u003Cp>Information covered by GDPR includes names, user IDs, emails, addresses, contact details, web analytics, IP address, cookies, and other special categories of data (e.g., sensitive, genetic, health, gender, biometric).\u003C\u002Fp>\n\u003Cp>This handy GDPR plugin is straightforward to use and makes an excellent addition to any business WordPress website. It allows for any site to be GDPR compliant, and it is compatible with both the regulations and industry best practices. It is a WordPress business user’s best friend.\u003C\u002Fp>\n\u003Ch3>How do I use it?\u003C\u002Fh3>\n\u003Cp>Once installed, you will be able to access the plugin from the main admin menu within WordPress – it is labeled GDPR. From here, you will see that there are four primary tabs: ‘general,’ ‘privacy policy,’ ‘integrated plugins,’ and ‘data access & to be forgotten.’\u003C\u002Fp>\n\u003Cp>Under the general tab, you can control all the privacy and cookie consent popups. Here you can opt to enable the popups, choose the cookie consent expiry time (the default being six months), write the messages included in the popups, and manage the colors of the box and the text. Finally, you can designate where the popups will appear on the page at the front end of the website.\u003C\u002Fp>\n\u003Cp>In the privacy policy section, you can select the page where your specific policy will be displayed. You can also customize the quick link that can be used to take your customers there so they can see why their data is being collected and how it will be managed.\u003C\u002Fp>\n\u003Cp>The integrated plugin section enables you to integrate the GDPR plugin with a range of other popular plugins that can be used to increase the functionality of your website further. The ones that are supported at present include:\u003Cbr \u002F>\n* Contact Form 7, which allows you to manage multiple contact forms.\u003Cbr \u002F>\n* Gravity Forms which offers the tools necessary for creating powerful contact forms.\u003Cbr \u002F>\n* Woocommerce which is designed to allow for e-commerce and online payment.\u003Cbr \u002F>\n* BuddyPress which enables the website to be transformed into a social network platform.\u003Cbr \u002F>\n* MailChimp, which lets you add signup forms to your website and allow customers to sign up for services.\u003Cbr \u002F>\n* WordPress Comments which facilitates interactions by enabling visitors to post comments.\u003C\u002Fp>\n\u003Cp>Data access & to be forgotten, the final tab, is a vital section of the plugin. This page is where users are provided with a form to access their data as well as the right to be forgotten. In this case, all collected data will be deleted.\u003C\u002Fp>\n\u003Cp>Again this section is fully customizable, you can create your own description, and you can enter your own messages. To enable users to access or delete their own personal data, you can insert a short code to a page or use a special widget.\u003C\u002Fp>\n\u003Cp>With each section of the plugin, you will need to click on ‘save changes’ to validate your changes and to ensure that your customizations are applied to your website.\u003C\u002Fp>\n\u003Ch3>How do my customers use it?\u003C\u002Fh3>\n\u003Cp>The GDPR Compliance & Cookie Consent plugin has been carefully designed with the specific goal of protecting the personal data of your customers and other visitors to your website.\u003C\u002Fp>\n\u003Cp>While some businesses may need to collect personal or sensitive information due to the nature of the service being provided, ultimately, how this data is handled needs to be at the discretion of the customer. The goal of such GDPR compliance plugins is to give the consumers absolute control of their information.\u003C\u002Fp>\n\u003Cp>Such control is achieved here through the use of GDPR consent checkboxes, cookie blockers, and having the right to be forgotten, among other things. As well as providing specific consent for the collection of their data, the customer needs to be made aware of what will happen to it at every stage of proceedings – this is done through the use of a privacy policy.\u003C\u002Fp>\n\u003Ch3>Why should I get it?\u003C\u002Fh3>\n\u003Cp>As previously outlined, from May 25, 2018, every website collecting data from EU residents or citizens need to address GDPR rules. This is a legal requirement for all online businesses, and the penalties for not abiding by such regulations are extremely harsh.\u003C\u002Fp>\n\u003Cp>Fines of up to €20 million or up to 4% of the annual worldwide turnover of the preceding financial year in case of an enterprise, whichever is greater, can be applied for not following such rules.\u003C\u002Fp>\n\u003Cp>The GDPR Compliance & Cookie Consent WordPress Plugin makes your website compatible with general GDPR regulations. This ensures that both you, the business owner, and your customers who are visiting your site and possibly providing sensitive data are protected under the laws.\u003C\u002Fp>\n","This plugin adds GDPR-compliant cookie management to websites, ensuring legal compliance and enhancing user privacy.",5000,462871,54,10,"2024-07-31T13:25:00.000Z","6.5.8","4.6","",[74,75,54,76,22],"cookie-banner","cookie-consent","gdpr-compliance","https:\u002F\u002Fwww.calculator.io\u002Fgdpr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-compliance-cookie-consent.1.6.1.zip",92,1,"2023-04-19 00:00:00",{"slug":83,"name":84,"version":85,"author":86,"author_profile":87,"description":88,"short_description":89,"active_installs":90,"downloaded":91,"rating":34,"num_ratings":92,"last_updated":93,"tested_up_to":14,"requires_at_least":94,"requires_php":95,"tags":96,"homepage":72,"download_link":99,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"simple-cookie-notice","Simple Cookie Notice","2.1","lovecoding","https:\u002F\u002Fprofiles.wordpress.org\u002Flovecoding\u002F","\u003Cp>This plugin allows you to add your own personalized cookie info and link to wordpress privacy policy site. You can set any color for cookie info and display it on top or bottom of site.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Simple and easy to set up\u003C\u002Fli>\n\u003Cli>Own personalized text about cookie info\u003C\u002Fli>\n\u003Cli>Personalized ‘accept cookie’ button text\u003C\u002Fli>\n\u003Cli>Ability to add link to wordpress privacy policy\u003C\u002Fli>\n\u003Cli>Personalized colors\u003C\u002Fli>\n\u003C\u002Ful>\n","Add personalized cookie info and link to wordpress privacy policy page.",1000,13764,4,"2026-01-10T17:58:00.000Z","5.0","7.0",[21,75,97,98,22],"cookie-law","cookie-notice","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-cookie-notice.2.1.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":25,"num_ratings":80,"last_updated":110,"tested_up_to":111,"requires_at_least":51,"requires_php":72,"tags":112,"homepage":113,"download_link":114,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"avacy","Avacy CMP","1.2.7","jumptech","https:\u002F\u002Fprofiles.wordpress.org\u002Fjumptech\u002F","\u003Ch3>Overview\u003C\u002Fh3>\n\u003Cp>The WordPress Consent Solution Plugin is a powerful tool that empowers website owners to easily configure a Consent Management Platform (CMP) and preemptively block all trackers on their website. This plugin ensures compliance with privacy regulations by providing users with the ability to manage their consent preferences for tracking technologies.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Consent Management Platform (CMP)\u003Cbr \u002F>\nUser-Friendly Interface: The plugin offers an intuitive dashboard for configuring and customizing the Consent Management Platform to suit your website’s needs.\u003Cbr \u002F>\nCustomizable Cookie Banners: Easily create and customize consent banners to inform users about the use of trackers on your website.\u003Cbr \u002F>\nConsent Logging: Keep track of user consent preferences and ensure compliance with privacy regulations.\u003C\u002Fli>\n\u003Cli>Tracker Preemptive Blocking\u003Cbr \u002F>\nComprehensive Tracker Database: The plugin includes a regularly updated database of known trackers. It enables you to preemptively block these trackers, enhancing user privacy.\u003Cbr \u002F>\nThe plugin preemptively blocks all the scripts that might contain a string in the \u003Ccode>src\u003C\u002Fcode> attribute or in the inner HTML that matches the strings you can configure on \u003Ca href=\"https:\u002F\u002Favacy.eu\" rel=\"nofollow ugc\">Avacy\u003C\u002Fa> for each vendor.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Avacy is a SaaS-based CMP that helps websites manage user consents efficiently and in compliance with data protection regulations. The platform offers customizable consent forms and integrates seamlessly with various web properties.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Ch3>Cookie Banners:\u003C\u002Fh3>\n\u003Cp>Cookie banners will automatically appear on your site once configured.\u003Cbr \u002F>\nUsers can manage their consent preferences through these banners.\u003C\u002Fp>\n\u003Ch3>Tracker Control:\u003C\u002Fh3>\n\u003Cp>Trackers are preemptively blocked based on a blacklist JSON file hosted on an AWS content delivery network.\u003Cbr \u002F>\nEvery time a page in the website is loaded, Avacy checks if scripts injected in the current page have \u003Ccode>src\u003C\u002Fcode> attribute or the \u003Ccode>innerHTML\u003C\u002Fcode> property containing a string matching the patterns in the blacklist and, if so, overrides some attributes and blocks the script.\u003Cbr \u002F>\nEvery script blocked this way will be launched only if user grants consent to the corresponding vendor and purposes by opting-in from the first layer or by selecting the vendor and its purposes from the second layer (the preference center).\u003C\u002Fp>\n\u003Ch4>CDN Information\u003C\u002Fh4>\n\u003Cp>The CDN used by Avacy is CloudFront, pointing to the following S3 bucket:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Favacy-cdn.s3.eu-central-1.amazonaws.com\u002F\n\nhttps:\u002F\u002Fassets.avacy-cdn.com\u002F\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Integration Example\u003C\u002Fstrong>\u003Cbr \u002F>\nEach custom vendor list can be reached using the following format:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Fassets.avacy-cdn.com\u002Fconfig\u002F{avacy_team_name}\u002F{avacy_webspace_key}\u002Fcustom-vendor-list.json;\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Explanation\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Base Url\u003C\u002Fstrong>: The base URL for the configuration file is https:\u002F\u002Fassets.avacy-cdn.com\u002Fconfig\u002F.\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>avacy_team_name\u003C\u002Fcode>\u003C\u002Fstrong>: This option should be replaced with your specific tenant identifier. This is a unique identifier for your organization within Avacy.\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>avacy_webspace_key\u003C\u002Fcode>\u003C\u002Fstrong>: This option should be replaced with your specific webspace key. This is a unique identifier for your specific webspace within your tenant’s account.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Example URL\u003C\u002Fstrong>\u003Cbr \u002F>\nAssuming the following:\u003C\u002Fp>\n\u003Cp>Tenant ID: \u003Cem>tenant123\u003C\u002Fem>\u003Cbr \u002F>\nWebspace Key: \u003Cem>webspace456\u003C\u002Fem>\u003Cbr \u002F>\nThe URL to access the custom vendor list would be:\u003C\u002Fp>\n\u003Cpre>\u003Ccode>https:\u002F\u002Fassets.avacy-cdn.com\u002Fconfig\u002Ftenant123\u002Fwebspace456\u002Fcustom-vendor-list.json\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Cp>\u003Cstrong>Account Requirements\u003C\u002Fstrong>\u003Cbr \u002F>\nTo connect to and utilize Avacy’s services, you need an active Avacy account with valid credentials, which include:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Tenant ID\u003C\u002Fstrong>: Provided upon registration with Avacy.\u003Cbr \u002F>\n\u003Cstrong>Webspace Key\u003C\u002Fstrong>: Generated after creating a new web space on Avacy.\u003Cbr \u002F>\nEnsure you have these credentials available to correctly generate the URLs needed for integration.\u003C\u002Fp>\n\u003Ch3>Avacy Consent Solution API\u003C\u002Fh3>\n\u003Cp>The plugin provides an interface that allows connecting to your consent archive on Avacy. To do this, it’s necessary to generate a token from the Avacy platform and insert it into the Token field in the API token tab. This way, all the forms present on the page will be visible, and it will be possible to select various options, including:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>the ability to store consents given for that specific form in the consent archive;\u003C\u002Fli>\n\u003Cli>the fields to store for that form;\u003C\u002Fli>\n\u003Cli>a field to identify the user who has given the consent to be stored in the archive.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Everytime a user submits his data from a contact form, Avacy will perform a POST request towards Avacy Consent API, using the previously generated token as authenticator.\u003C\u002Fp>\n\u003Ch4>Under What Circumstances is Avacy Used?\u003C\u002Fh4>\n\u003Cp>Avacy is utilized whenever users provide consent through forms or interactions on your WordPress site. The plugin sends this consent data to Avacy’s servers for storage and processing.\u003C\u002Fp>\n\u003Ch4>Avacy Service Link\u003C\u002Fh4>\n\u003Cp>For more information about Avacy and its features, visit Avacy’s \u003Ca href=\"https:\u002F\u002Favacysolution.com\u002F\" rel=\"nofollow ugc\">website\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Avacy Terms of Use and Privacy Policies\u003C\u002Fh4>\n\u003Cp>Avacy uses 3rd party services as the Avacy REST API and AWS distributions to provide assets as the blacklist JSON file.\u003Cbr \u002F>\nBefore integrating Avacy with this plugin, please review the Avacy \u003Ca href=\"https:\u002F\u002Favacy.eu\u002Fterms-and-conditions\" rel=\"nofollow ugc\">Terms of use\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fapi.avacy.eu\u002Fjumpgroup\u002Fprivacypolicy\u002F14\u002Fit\" rel=\"nofollow ugc\">Privacy Policy\u003C\u002Fa> to understand how your data is handled and what responsibilities you have as a user of their service.\u003C\u002Fp>\n\u003Cp>We welcome your feedback and suggestions to improve the functionality of the plugin.\u003C\u002Fp>\n\u003Ch3>Disclosure of Third-Party Service Usage\u003C\u002Fh3>\n\u003Cp>Our plugin utilizes third-party services to enhance its functionality. Below, we detail the specific circumstances under which these services are used, along with links to the respective service providers, their terms of use, and privacy policies.\u003C\u002Fp>\n\u003Ch3>Services Utilized\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Amazon Web Services (AWS)\u003C\u002Fstrong> is a leading cloud platform offering a wide range of services, including computing power, storage, and networking, as well as advanced technologies like machine learning and IoT. AWS is designed for flexibility, scalability, and service reliability.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>AWS CloudFront\u003C\u002Fstrong> is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to users globally with low latency and high transfer speeds.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>The URLs \u003Cem>https:\u002F\u002Fjumpgroup.avacy-cdn.com\u003C\u002Fem> and \u003Cem>https:\u002F\u002Fassets.avacy-cdn.com\u003C\u002Fem> are custom domains provided to access the AWS CloudFront service. Each asset is fetched from these URLs.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>Script Enqueuing\u003C\u002Fstrong>\u003Cbr \u002F>\nScript enqueuing involves dynamically adding the main JavaScript core in order to display the cookie banner on your page. This method ensures that scripts are loaded only when needed, reducing page load times and improving performance.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Configuration Fetching\u003C\u002Fstrong>\u003Cbr \u002F>\nCMP configuration fetching is used to dynamically load the latest CMP configuration settings and vendor lists from a remote server. This process ensures that the plugin operates with the most current data, improving security, compatibility, and functionality.\u003C\u002Fp>\n\u003Ch4>Service Provider Information\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Service URL\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Faws.amazon.com\u002F\" rel=\"nofollow ugc\">Amazon Web Services\u003C\u002Fa>\u003Cbr \u002F>\n\u003Cstrong>Privacy Policy\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Fd1.awsstatic.com\u002Flegal\u002Fprivacypolicy\u002FAWS%20Privacy%20Notice%20-%202024-01-01_IT.pdf\" rel=\"nofollow ugc\">AWS Privacy Policy\u003C\u002Fa>\u003Cbr \u002F>\n\u003Cstrong>Terms of Use\u003C\u002Fstrong>: \u003Ca href=\"https:\u002F\u002Faws.amazon.com\u002Fit\u002Fservice-terms\u002F\" rel=\"nofollow ugc\">AWS Terms of Use\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Legal Protection\u003C\u002Fstrong>\u003Cbr \u002F>\nFor your protection and to ensure transparency, we disclose the reliance on third-party services within our plugin. The URLs above provide detailed information on the terms of use and privacy policies of AWS. Users are encouraged to review these documents to understand the terms and conditions under which these third-party services operate.\u003C\u002Fp>\n\u003Cp>By using our plugin, you acknowledge and agree to these terms and conditions. If you have any questions or concerns, please refer to the provided links or contact us directly for more information.\u003C\u002Fp>\n\u003Ch3>License\u003C\u002Fh3>\n\u003Cp>This WordPress Consent Solution Plugin is licensed under the \u003Ca href=\"https:\u002F\u002Fwww.gnu.org\u002Flicenses\u002Fgpl-2.0.html\" rel=\"nofollow ugc\">GNU General Public License v2.0 or later\u003C\u002Fa>.\u003C\u002Fp>\n","Overview",500,5026,"2026-01-19T10:08:00.000Z","6.7.5",[20,74,75,54,22],"https:\u002F\u002Favacysolution.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Favacy.1.2.7.zip",{"slug":116,"name":117,"version":118,"author":119,"author_profile":120,"description":121,"short_description":122,"active_installs":25,"downloaded":123,"rating":25,"num_ratings":124,"last_updated":125,"tested_up_to":14,"requires_at_least":126,"requires_php":72,"tags":127,"homepage":129,"download_link":130,"security_score":25,"vuln_count":11,"unpatched_count":11,"last_vuln_date":26,"fetched_at":27},"mini-wp-gdpr","Mini WP GDPR","1.4.3","Power Plugins","https:\u002F\u002Fprofiles.wordpress.org\u002Fpowerplugins\u002F","\u003Cp>Features include a cookie and tracking-script consent popup, integrations for WooCommerce and Contact Form 7. It logs when users first accept your privacy policy and can also inject your Google Analytics tracking code for you.\u003C\u002Fp>\n\u003Cp>Installing this plugin is no guarantee that your site will magically become fully GDPR compliant, but it should make it much easier for you to get there.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Automatically add Privacy consent check boxes to your ContactForm7 forms, with the consent coming through into the contact emails.\u003C\u002Fli>\n\u003Cli>Detect and log Terms & Conditions consent in WooCommerce.\u003C\u002Fli>\n\u003Cli>Detect tracking JS scripts and, in some cases, defer them running until the user consents.\u003C\u002Fli>\n\u003Cli>Inject Google Analytics, Facebook Pixel and Microsoft Clarity trackers directly from Mini WP GDPR.\u003C\u002Fli>\n\u003Cli>Works with the official WooCommerce Google Analytics Integration plugin.\u003C\u002Fli>\n\u003Cli>See which WP users have given their consent in the main WP users admin table.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Help\u003C\u002Fh3>\n\u003Cp>To dig deeper into the options:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fpower-plugins.com\u002Fplugin\u002Fmini-wp-gdpr\u002F\" rel=\"nofollow ugc\">Mini WP GDPR Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","A lightweight and easy-to-use tool to help you with your GDPR compliance tasks.",5274,6,"2026-01-23T20:00:00.000Z","6.4",[75,98,54,128,22],"google-analytics","https:\u002F\u002Fpower-plugins.com\u002Fplugin\u002Fmini-wp-gdpr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmini-wp-gdpr.1.4.3.zip",{"attackSurface":132,"codeSignals":166,"taintFlows":177,"riskAssessment":197,"analyzedAt":204},{"hooks":133,"ajaxHandlers":153,"restRoutes":162,"shortcodes":163,"cronEvents":164,"entryPointCount":165,"unprotectedCount":165},[134,140,144,149],{"type":135,"name":136,"callback":137,"file":138,"line":139},"action","admin_menu","WPGearCPPA_Action_admin_menu","includes\\admin\\admin.php",14,{"type":135,"name":141,"callback":142,"file":138,"line":143},"admin_enqueue_scripts","WPGearCPPA_Action_admin_enqueue_scripts",27,{"type":135,"name":145,"callback":146,"file":147,"line":148},"init","WPGearCPPA_Action_init","wpgear-consent-privacy-policy-acceptance.php",23,{"type":135,"name":150,"callback":151,"file":147,"line":152},"wp_enqueue_scripts","WPGearCPPA_Action_enqueue_scripts",40,[154,159],{"action":155,"nopriv":156,"callback":157,"hasNonce":156,"hasCapCheck":156,"file":147,"line":158},"wpgear-cppa_clear_cookies",false,"WPGearCPPA_Action_clear_cookies",98,{"action":155,"nopriv":160,"callback":157,"hasNonce":156,"hasCapCheck":156,"file":147,"line":161},true,99,[],[],[],2,{"dangerousFunctions":167,"sqlUsage":168,"outputEscaping":170,"fileOperations":11,"externalRequests":11,"nonceChecks":80,"capabilityChecks":80,"bundledLibraries":176},[],{"prepared":80,"raw":11,"locations":169},[],{"escaped":171,"rawEcho":80,"locations":172},64,[173],{"file":147,"line":174,"context":175},111,"raw output",[],[178],{"entryPoint":179,"graph":180,"unsanitizedCount":11,"severity":196},"\u003Coptions> (includes\\admin\\options.php:0)",{"nodes":181,"edges":194},[182,188],{"id":183,"type":184,"label":185,"file":186,"line":187},"n0","source","$_REQUEST (x4)","includes\\admin\\options.php",22,{"id":189,"type":190,"label":191,"file":186,"line":192,"wp_function":193},"n1","sink","echo() [XSS]",132,"echo",[195],{"from":183,"to":189,"sanitized":160},"low",{"summary":198,"deductions":199},"The \"wpgear-consent-privacy-policy-acceptance\" plugin v2.5 demonstrates a mixed security posture.  Its strengths lie in the absence of known CVEs, proper use of prepared statements for SQL queries, high percentage of properly escaped output, and the lack of file operations or external HTTP requests. This indicates good development practices regarding common web application vulnerabilities.\n\nHowever, the primary concern is the significant attack surface exposed through its AJAX handlers. Two AJAX handlers are identified, and critically, both lack authentication checks. This means any authenticated user, regardless of their role or permissions, could potentially trigger these handlers, leading to unintended actions or information disclosure. The taint analysis shows no critical or high severity flows with unsanitized paths, which is positive, but it's important to remember that the attack surface itself presents a significant risk.\n\nThe plugin's history of zero known vulnerabilities is a positive indicator of past security diligence. Coupled with the limited scope of its functionality (no cron events, shortcodes, or REST API routes), this suggests a potentially stable codebase. Nevertheless, the unprotected AJAX endpoints remain a substantial weakness that needs immediate attention to mitigate potential exploitation.",[200,202],{"reason":201,"points":68},"AJAX handlers without authorization checks",{"reason":203,"points":68},"Two AJAX entry points without auth checks","2026-03-17T06:25:09.444Z",{"wat":206,"direct":215},{"assetPaths":207,"generatorPatterns":210,"scriptPaths":211,"versionParams":212},[208,209],"\u002Fwp-content\u002Fplugins\u002Fwpgear-consent-privacy-policy-acceptance\u002Fstyle.css","\u002Fwp-content\u002Fplugins\u002Fwpgear-consent-privacy-policy-acceptance\u002Fincludes\u002Fjs\u002Fwpgear-cppa.js",[],[209],[213,214],"wpgear-consent-privacy-policy-acceptance\u002Fstyle.css?ver=","wpgear-consent-privacy-policy-acceptance\u002Fincludes\u002Fjs\u002Fwpgear-cppa.js?ver=",{"cssClasses":216,"htmlComments":217,"htmlAttributes":218,"restEndpoints":219,"jsGlobals":220,"shortcodeOutput":222},[],[],[],[],[221],"wpgearcppa_user_options",[]]